diff --git a/recovery.te b/recovery.te
index d2cc90ea2fc538d1e4817d8ae575fdd765334299..afacf40949dc71083455a193a7a79df95887967f 100644
--- a/recovery.te
+++ b/recovery.te
@@ -48,7 +48,7 @@ recovery_only(`
   # TODO: create more specific label?
   allow recovery sysfs:file w_file_perms;
 
-  access_kmsg(recovery)
+  allow recovery kernel:system syslog_read;
 
   # Access /dev/android_adb or /dev/usb-ffs/adb/ep0
   allow recovery adb_device:chr_file rw_file_perms;
diff --git a/te_macros b/te_macros
index 6d918354b46e994c6880ddb89d8aa8d489bdf971..4d18973f4e0b6885475880d6b19d2f9c7858a60b 100644
--- a/te_macros
+++ b/te_macros
@@ -269,16 +269,6 @@ allow $1 security_file:lnk_file { create rename unlink };
 set_prop($1, security_prop)
 ')
 
-#####################################
-# access_kmsg(domain)
-# Ability to read from kernel logs
-# and execute the klogctl syscall
-# in a non destructive manner. See
-# man 2 klogctl
-define(`access_kmsg', `
-allow $1 kernel:system syslog_read;
-')
-
 #####################################
 # create_pty(domain)
 # Allow domain to create and use a pty, isolated from any other domain ptys.